Trend Micro Titanium Maximum Security TMTDI.SYS Privilege Escalation Exploit

This module exploits a privilege escalation vulnerability in Trend Micro Titanium Maximum Security tmtdi.sys driver. The vulnerable driver trusts a dword passed from user mode via IOCTL 0x220404, and interprets it as a function pointer without performing validations. This vulnerability allows unprivileged local users to execute code with SYSTEM privileges.
Exploit type: 
Vulnerabilty ID: 
Released Date: 
Monday, November 8, 2010 - 18:00